VDB
GCVE-110-MAGEIA-2016-97
GCVE-110-MAGEIA-2016-97
Advisory Published
Updated graphite2 packages fix security vulnerabilities:
Multiple security flaws were found in the graphite2 font library. A web page
or document containing malicious content could cause an application using
graphite2 to crash or, potentially, execute arbitrary code with the
privileges of the user running the application (CVE-2016-1977,
CVE-2016-2790, CVE-2016-2791, CVE-2016-2792, CVE-2016-2793, CVE-2016-2794,
CVE-2016-2795, CVE-2016-2796, CVE-2016-2797, CVE-2016-2798, CVE-2016-2799,
CVE-2016-2800, CVE-2016-2801, CVE-2016-2802).
The graphite2 package has been updated to version 1.3.6 which fixes
these security issues.
Affected Products
| Vendor | Product | Versions | Platforms |
|---|---|---|---|
| Mageia | graphite2 | 1.3.6-1.mga5 (unaffected), 0 (affected), 1.3.6-1.mga5 (unaffected), 0 (affected) | — |
| Mageia | python-gitpython | 0 (affected), 0.3.1-9.1.mga5 (unaffected) | — |
References
Explore Further
Investigate this vulnerability in the interactive console or download the raw GCVE record.